Privacy policy




1.       Introduction – who are we?. 1

2.       How do we process your personal data?. 1

A.        When do we collect your data?. 1

B.        Which data do we collect?. 1

C.        For what purpose do we collect your data?. 1

D.        Which are the legal grounds we apply for data processing?. 1

E.        From whom do we receive data?. 1

F.        Who will receive your data from us?. 1

G.        Where do we store your data?. 1

H.        For what period of time do we store your data?. 1

I.          Security. 1

3.       What are your rights?. 1

4.       How can you file a complaint?. 1

5.       Final provision. 1


1. Introduction – who are we?

Verbau NV, having its registered offices at Zone industrielle de l'Europe (L) 2, 7900 Leuze-en-Hainaut (Belgium) and registered with the Crossroads Bank for Enterprises under no. 0824.710.133 (hereinafter referred to as Verbau “we” of “us”) attaches the utmost importance to  your privacy and makes sure that your personal data are treated with the necessary care and confidentiality.

This privacy statement explains why we require your personal data and how exactly we process these data. Should you have any questions after having read this statement, please do not hesitate to contact us.  

This statement only applies to the personal data, which Verbau processes in its capacity of data controller. This is the case when we determine the purpose and resources (the “why” and “how”) for the processing of your personal data.

Our understanding of ‘processing personal data’ is any processing of data identifying you as a natural person. The specific data concerned will be explained further down below in this privacy statement. The concept of ‘processing’ is a broad concept and includes the collection, storage, use or distribution of data.

In order to avoid any misunderstanding, we would like to point out that this privacy statement is applicable to (any visitor of) our website (hereinafter referred to as  the “Website”) and to the activities associated herewith or (commercial) relations that result from them. For example, at the time of contact through the website with questions about our products.

It is also applicable to the processing of personal data of (contacts) of our customers. Also personal data of (contacts) of former customers, former users are carefully treated and secured in accordance with this privacy statement.

For further questions about this statement or about the processing of your personal data, please contact your trusted contact person within our organisation. You can also reach us on:

  • our website:
  • by e-mail:
  • by letter: Verbau NV

Attn.  Privacy Department

Zone industrielle de l'Europe (L) 2

7900 Leuze-en-Hainaut


2. How do we process your personal data?

A. When do we collect your data?

We collect and process your data in our capacity of data controller when

  • you contact us or have contacted us:

e.g. visiting our website;
e.g. filling out the contact form on our website;

  • we supply or have supplied one of our products to you;
  • you are or have been a user of our services;
  • we would provide you with our products in the future;
  • you have supplied services or products to us;
  • you are our contact or go-between for one of our customers or suppliers;
  • you subscribe to our newsletter or we consider that it may be interesting for you being our customer.


B. Which data do we collect?

We can process the following type of data relating to you as a person. However, depending on the situation, we do not always process all of these data.

  • Your contact information: e.g. your name, (professional or private) email address and any other contact data which you communicate to us or which we require from you e.g. as concerns our newsletter;
  • Your personal details: age, gender, date of birth, place of birth;
  • Your employment-related details: language knowledge, employer, professional activities, professional skills, publications, language skills, … ;
  • Your contact history: sent and received communications (e.g. e-mail messages),… in response to communications we maintain with you;
  • Your electronic identification data: e.g. your IP address, browser type, connection times,… when visiting our Website that makes use of cookies or similar technologies;

In principle, we will not process any special categories of data (such as, medical data, political views, religious or philosophical beliefs, trade union membership) unless you provide them to us following your explicit consent.


C. For what purpose do we collect your data?

In general we process your data for one of the following purposes:

  • operational purposes: for example, in order to keep our services user-friendly and align products to market evolutions, answer your contact request;
  • business purposes: for example, to manage your client or potential client relations, and to deliver or offer our services; manage newsletter subscriptions

If we wish to process your personal data for any purpose other than that for which the data was obtained, we will contact you before starting up any further processing.


D. Which are the legal grounds we apply for data processing?

We process your data only for legitimate purposes, and the processing will always be carried out in accordance with the valid justifications as listed in the General Data Protection Regulation (GDPR).

In general, we process data because it is required for the execution or termination of the agreements concluded with our clients and suppliers. These agreements are drawn up in order to provide customers with our products or to purchase services or products from suppliers.

Moreover, we process your personal data when it is required by law to do so.

Furthermore, we process your data following your consent. You may withdraw your consent at any time by contacting us. We request that you always confirm a withdrawal of consent made by telephone in writing, or notify us of your withdrawal of consent by e-mail or letter. Unsubscribing to a newsletter can simply be done by clicking the unsubscribe link, which is to be found at the bottom of each automated e-mail we send to you. Should you receive personal non-automated emails from us, you can simply unsubscribe by replying to these mails and stating you no longer wish to receive these mails.

In addition, we can process your data on the grounds of valid justifications, which in particular cases may outweigh the disadvantages affecting your rights. For example, subscribing to our newsletters to you as being one of our former or current customers. Given the nature of the data available and the fact that you are already purchasing or have been purchasing our products, we consider that any possible disadvantage that may affect your rights is minimal, since we believe that the information made available may be of some interest to you. In applying these legal grounds, we will limit the effects these may have on your privacy by limiting our purpose and facilitate adequate access and security safeguards in order to prevent unauthorized use as well as providing you with the possibility to simply terminate the processing instantly.


E. From whom do we receive data?

We obtain data in principle solely from you directly or from public sources and third parties.

If you purchase our products, it is for example possible that your colleagues or your employer communicate your data.

In addition to consulting public sources, such as the Crossroads Bank for Enterprises, press articles and other publicly available information, we have entered into joint operation agreements with various partners such as companies specialised in business data collection, companies specialised in supplying prospects lists and other data suppliers.

If we obtain your data from public sources or third parties and we process your data in our systems for other purposes than those for which they have been collected in our capacity of data controller, we will immediately inform you about the processing of your data in referring to this privacy statement.


F. Who will receive your data from us?

We will not pass on your personal data to third parties, unless we are required by law or if it is necessary in order to realise one of our aforementioned objectives.

Should the latter be the case, we appeal to so-called processors. Processors are service providers whom we authorize to process our data following our written instruction. E.g. IT service providers who manage our IT systems (servers and back-up).

We will not sell, rent out or exchange your data for third-party commercial purposes.

Before sharing data with third countries or international organisations, they are anonymised, so that your personal data cannot be shared outside the European Economic Area.


G. Where do we store your data?

We store your personal data mainly on IT systems located in the European Economic Area (EEA). Some of these IT systems are outsourced to third parties and the data are kept in the EEA. We employ IT service providers who are located outside the EEA, but the data are anonymised before they are transferred outside the EEA. All IT service providers act as data processors on our behalf.


H. For what period of time do we store your data?

We keep your personal data no longer than necessary for the purpose they have been collected or are being processed.  

Given that the time period during which the data are stored, depends on the objectives for which they have been collected, the storage period may vary whatever the situation may be. Sometimes specific legislation will require us to keep data for a certain period of time. Our storage periods for personal data are based on legal requirements and considerations with respect to your rights and expectations on the one hand and what is useful and necessary for the supply of our products.  

E.g. we keep certain data and correspondence in order to be able to offer you products in the future which are similar to those already offered to you.

When it is no longer necessary to process your data, we will erase or anonymise your personal data. If this would not be (technically), e.g. because your data are stored in back-up archives, we will store your data but we will not process them any further and will remove them as soon as it becomes possible.


I. Security

We have taken the required physical and adequate technical and practical (precautionary) measures in order to secure your personal data against loss or any type of illegitimate processing.

We limit access to personal data for personnel and third parties, if they would require such access to data for legitimate, relevant business purposes.


3. What are your rights?

You have a certain number of rights with respect to the personal data collected about you. If you wish to exercise one of the below-mentioned rights, please contact us by email, phone or letter.

You can exercise the following rights:

  • Right to access and copy: if you wish you access your personal data and obtain a copy;
  • Right to rectification: if your data are incorrect, please let us know so that we can correct the data for you;
  • Right to erasure of data (the right to be forgotten):  if you wish, you can ask us to erase your personal data. It may however  be the case that we do need to process your data for other purposes;
  • Right to restriction of processing: if you believe that we are processing your data incorrectly or illegitimately, you also have the possibility to limit the processing within certain boundaries.  
  • Right to object: you can also lodge an objection against the processing of your data. If it concerns marketing data, we will terminate the processing as soon as possible.
  • Right to data portability: if you wish to transfer your personal data, please contact us.

The exercise of the above-mentioned rights however is subject to certain exceptions in order to safeguard public interest, our interests and other individuals’ interests.

When you submit a request to exercise your rights, we will first verify your identity and request a copy of your identity card. We do this in order to prevent your data from falling into the wrong hands.

In principle, exercising your rights is free of charge. If your request appears to be unfounded or exorbitant, we may charge you a reasonable fee in order to cover the administrative costs incurred. In such cases, however, we may also simply decide to decline your request. You will then be notified of the reasons as to why we refused your request.

Anyhow, we will inform you at the latest within four weeks (for simple requests) or three months (for complex or multiple requests) about the outcome of your request.


4. How can you file a complaint?

Even though we undertake all efforts in order to protect your privacy and to comply with the applicable legislation, it may occur that you do not agree with how we collect, use and/or process your data.

Evidently, you can always contact us, but it is also possible to file a complaint, as follows.

Firstly, you can file a complaint with u:

  • via the website:
  • via e-mail:
  • via letter:      Verbau NV

Attn. privacy department

Zone industrielle de l'Europe (L) 2

7900 Leuze-en-Hainaut



In addition, you can also file a complaint with the supervisory authority, who you can contact via the below-mentioned contact details:

  • via phone: +32 (0)2 274 48 00
  • via fax: +32 (0)2 274 48 35
  • via e-mail:
  • via letter: Data Protection Authority

Drukpersstraat 35

1000 Brussels


Secondly, if you suffered damages, you can file a claim for a compensation with the competent court.

For more information about filing complaints and legal recourse, please consult the website of the data protection authority’s website:


5. Final provision

We can unilaterally decide to modify the present privacy statement. The most recent version is always available on our website.